Sveriges mest populära poddar
CyberWire Daily
NyheterDagliga nyheter

Triofox and the key to disaster. [Research Saturday]

19 min31 maj 2025

This week, we are joined by John Hammond, Principal Security Researcher at Huntress, who is sharing his PoC and research on "CVE-2025-30406 - Critical Gladinet CentreStack & Triofox Vulnerability Exploited In The Wild." A critical 9.0 severity vulnerability (CVE-2025-30406) in Gladinet CentreStack and Triofox is being actively exploited in the wild, allowing remote code execution via hardcoded cryptographic keys in default configuration files.

Huntress researchers observed compromises at multiple organizations and confirmed hundreds of vulnerable internet-exposed servers, urging immediate patching or manual machineKey updates. Mitigation guidance, detection, and remediation scripts have been released to help users identify and secure affected installations.

The research can be found here:

Learn more about your ad choices. Visit megaphone.fm/adchoices

Fler avsnitt av CyberWire Daily

Visa alla avsnitt av CyberWire Daily
More bark than byte. [Research Saturday]
24 min
Factory reset required.
25 min
Gone with the command.
25 min
Klue me in on the breach.
28 min
All eyes on AI.
25 min
The Klue is in the data trail.
30 min
Vulnerability response: Built for humans, outpaced by machines. [CyberWire-X]
25 min
Navigating the GPS threat landscape, with Brandon Karpf. [T-Minus: Space-Cyber Briefing]
32 min
Peeling back Banana RAT. [Research Saturday]
29 min
CyberWire Daily at 10: A decade of leaks, espionage, and influence operations. [Special Edition]
26 min

CyberWire Daily med N2K Networks finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.